summaryrefslogtreecommitdiff
path: root/indoteknik_api/controllers/controller.py
diff options
context:
space:
mode:
Diffstat (limited to 'indoteknik_api/controllers/controller.py')
-rw-r--r--indoteknik_api/controllers/controller.py4
1 files changed, 2 insertions, 2 deletions
diff --git a/indoteknik_api/controllers/controller.py b/indoteknik_api/controllers/controller.py
index 12305d92..4d6716b2 100644
--- a/indoteknik_api/controllers/controller.py
+++ b/indoteknik_api/controllers/controller.py
@@ -12,7 +12,7 @@ import functools
class Controller(http.Controller):
- jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB4c"
+ jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB"
@staticmethod
def must_authorized(private=False, private_key=''):
@@ -28,7 +28,7 @@ class Controller(http.Controller):
self.set_user_pricelist_ctx()
if private:
- auth_key = int(auth[private_key])
+ auth_key = None if isinstance(auth, bool) else auth[private_key]
param_key = int(kwargs.get(private_key, -1))
if auth_key != param_key:
return self.unauthorized_response()
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-19 17:52:20 +0000